[41739] in bugtraq
about phpMyAdmin's server_privileges.php announced vulnerability
daemon@ATHENA.MIT.EDU (Marc Delisle)
Mon Dec 19 18:18:32 2005
Message-ID: <43A6F92B.8000402@cegepsherbrooke.qc.ca>
Date: Mon, 19 Dec 2005 13:17:15 -0500
From: Marc Delisle <Marc.Delisle@cegepsherbrooke.qc.ca>
MIME-Version: 1.0
To: bugtraq@securityfocus.com
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-MailScanner-From: marc.delisle@cegepsherbrooke.qc.ca
phpMyAdmin's team answer to vulnerability announcement
of Dec 17, 2005
[ http://www.securityfocus.com/archive/1/419709/30/0/threaded ]
We don't think that this is a real threat. The server_privileges.php
script checks at the beginning if the user is privileged. So, for this
attack to work, the victim's phpMyAdmin installation would have to be
set as to allow any user to auto-login as a privileged user! If this is
the case, this phpMyAdmin installation is wide open and this situation
has to be fixed by the person who configured phpMyAdmin.
Marc Delisle, for the team
